[@afdenahy Member 17 years, 1 month ago]

Thanks Trent et al. 3ix have fixed the problem. This is their response:

We have investigated the root cause of the issue and it is a type of iframe hacking from an Serbian IP which got into one of the customised php scripts of one of the clients and then got FTP access of domains and modified the pages.

We have removed that script and the banned the IP and process of removing that hacked script . Your account has been cleaned.

Now I’m changing lots of passwords. Sorry about jumping to conclusions about that script line in your header.php Trent.

Anthony